Topology

Transparent HA with trunk links

Requirements

1. How IP addressing works under the native VLAN of the trunk link:
   Case 1: Traffic under the native VLAN going out of the switch to Deep Discovery Web Inspector does not carry the native VLAN ID.
   Requirement: When performing the initial deployment, you should disable the VLAN ID on the egress port.
   Case 2: Traffic under the native VLAN going out of the switch to Deep Discovery Web Inspector carries the native VLAN ID.
   Requirement: When performing the initial deployment, you should enable the VLAN ID on the egress port, and the VLAN ID must set to the native VLAN ID.
2. How IP addressing works under a normal trunk VLAN.
   Requirement: When performing the initial deployment, you should enable the VLAN ID on the egress port, and the VLAN ID must set to the normal trunk VLAN ID.

Important You must ensure that the IP address of the Deep Discovery Web Inspector bridge egress interface (br0) can access the Internet. If some clients and the internal web servers are deployed in the same VLAN and the IP address of the egress port of the appliance is not in the same VLAN, clients might not be able to access the internal HTTP server after the VLAN converges to the egress port VLAN. In a trunk link, all traffic from ingress can carry different VLAN tags. All these VLAN tags will converge to the one VLAN (native VLAN/normal VLAN) of the egress port to access to the Internet.